chore(scripts): properly configure falco-kmod dependency on falco-kmod-inject with PartOf.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>

scripts/debian/postrm.in

@@ -27,6 +27,7 @@ if [ -d /run/systemd/system ] && [ "$1" = remove ]; then
         systemctl --system disable 'falco-bpf.service' || true
         systemctl --system disable 'falco-modern-bpf.service' || true
         systemctl --system disable 'falco-plugin.service' || true
+
         echo "[POST-REMOVE] Trigger deamon-reload:"
         systemctl --system daemon-reload || true
 fi

scripts/debian/prerm.in

@@ -21,19 +21,15 @@ set -e
 # ref: https://www.debian.org/doc/manuals/debmake-doc/ch05.en.html#debhelper
 # Currently running falco service uses the driver, so stop it before driver cleanup
 
-if [ -d /run/systemd/system ] && [ "$1" = remove ]; then
-        echo "[PRE-REMOVE] Stop all Falco services:"
-        systemctl --system stop 'falco-kmod.service' || true
-        systemctl --system stop 'falco-bpf.service' || true
-        systemctl --system stop 'falco-modern-bpf.service' || true
-        systemctl --system stop 'falco-plugin.service' || true
-        # this should be stopped after 'falco-kmod.service'
-        systemctl --system stop 'falco-kmod-inject.service' || true
-fi
-
 case "$1" in
-	remove|upgrade|deconfigure)
-                echo "[PRE-REMOVE] Call 'falco-driver-loader --clean:'"
-		falco-driver-loader --clean
-	;;
+    remove|upgrade|deconfigure)
+      echo "[PRE-REMOVE] Stop all Falco services:"
+      systemctl --system stop 'falco-kmod.service' || true
+      systemctl --system stop 'falco-bpf.service' || true
+      systemctl --system stop 'falco-modern-bpf.service' || true
+      systemctl --system stop 'falco-plugin.service' || true
+
+      echo "[PRE-REMOVE] Call 'falco-driver-loader --clean:'"
+      falco-driver-loader --clean
+    ;;
 esac

scripts/rpm/postuninstall.in

@@ -23,6 +23,7 @@ if [ -d /run/systemd/system ] && [ $1 -eq 0 ]; then
         systemctl --system disable 'falco-bpf.service' || true
         systemctl --system disable 'falco-modern-bpf.service' || true
         systemctl --system disable 'falco-plugin.service' || true
+
         echo "[POST-REMOVE] Trigger deamon-reload:"
         systemctl --system daemon-reload || true
 fi

scripts/rpm/preuninstall.in

@@ -16,17 +16,12 @@
 #
 set -e
 
-# pre uninstall mirrored from .deb
 # Currently running falco service uses the driver, so stop it before driver cleanup
-if [ -d /run/systemd/system ] && [ $1 -eq 0 ]; then
-        echo "[PRE-REMOVE] Stop all Falco services:"
-        systemctl --system stop 'falco-kmod.service' || true
-        systemctl --system stop 'falco-bpf.service' || true
-        systemctl --system stop 'falco-modern-bpf.service' || true
-        systemctl --system stop 'falco-plugin.service' || true
-        # this should be stopped after 'falco-kmod.service'
-        systemctl --system stop 'falco-kmod-inject.service' || true
-fi
+echo "[PRE-REMOVE] Stop all Falco services:"
+systemctl --system stop 'falco-kmod.service' || true
+systemctl --system stop 'falco-bpf.service' || true
+systemctl --system stop 'falco-modern-bpf.service' || true
+systemctl --system stop 'falco-plugin.service' || true
 
 echo "[PRE-REMOVE] Call 'falco-driver-loader --clean:'"
 falco-driver-loader --clean

scripts/systemd/falco-kmod-inject.service

@@ -1,8 +1,11 @@
 [Unit]
 Description=Falco: Container Native Runtime Security with kmod, inject.
 Documentation=https://falco.org/docs/
+PartOf=falco-kmod.service
 
 [Service]
 Type=oneshot
+RemainAfterExit=yes
 User=root
 ExecStart=/sbin/modprobe falco
+ExecStop=/sbin/rmmod falco

scripts/systemd/falco-kmod.service

@@ -11,7 +11,6 @@ Conflicts=falco-plugin.service
 Type=simple
 User=root
 ExecStart=/usr/bin/falco --pidfile=/var/run/falco.pid
-ExecStopPost=/sbin/rmmod falco
 UMask=0077
 TimeoutSec=30
 RestartSec=15s